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AMKNDMKNTS TO TTIE CLAIMS 

The lisling of cU\m$ vvill replace all prior versions, and listings, of claims in the 
• applicalion: 

; ilst ing of Claims: 

Claim I. (CuiTcnlly Amended) In a computer environment including a plurality of - 
aj)plicalions that operate on drua related to an idenlily> the computer euviromnent also including 
a service that mainlaius data associated with the identity, a method for one oftlie plurality of. 
ijppiications lo operate on data related to the identity^ the method comprising the following;.- 

: an act of identifying a data structure that represents data that is to be operated on, the data 

being associated with the identity suc h that the data bclonas to the associated identity and also 
j;\ich that t he identity retains control over access pr ivilege s of the phn ality of annli catio ns to the 
iktii, the ci;ita slmcliire being in accordance with a data format recognized by the service and the 
phiniUty of applications; 

an act of constructing a network message in accordance with a message fomiat that is 

: recognized by the service, the network message itjprcsenting a request to pcrfonn the operation 
on the data stiiiclurc, the network message identifying the data slnjclure by identifying the 
identity; and 

an act of dispalclnng the network message to the service. 
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Claim 2. (Orii^n'cil) A method in accordance with Claim 1, wherein Ihe act of 
clispatching Ibc nctwoilc jncssagc to Uie service comprises dispatching the network message 
directly to the service without first communicating with a locator searvice. 

Claim 3. (Original) A method in accordiuice with Claim 1, wherein the data 
structure compdses a coatcnt dala structure that represents the actual data of interest. 

Claim 4. (Originnl) A method in accordance witli Claim 1, wherein the data 
fitmcture comprises an access control data structure. 

. . ' Claim 5.' (Original) A method in accordance with Claim 1, wherein the data 
f;lriicturc comprises a systems data slaicturc, ' . . 

Claim 6. (Cimently Amended) A method in accordance with Claim 1, wherein the 
data thai: is to bu operated on is not directly accessed by the plurality of applioati oft a pplications , 
but is only directly accessed via the service, 

Claim?, (Cunently Amended) A method in accordance with Claim 1, fuilher 
comprising; 

an act of the jjranliny the application access to tlie data structure prior to the acts of 
idcDlifying, conslmciing, find dispalchin u, wherein the decision o n >v)iethc y or not \o arant th e 

APPllcgLtioM.^S"'^^^ i^ based on pc nni.ssinn.s provided hv the identity . 
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Claims. (Currency Amended) A method in accordance with Claim 1, further 
comimsing: 

an net of revoking access from the application to the data structure after the acts of 
idcutifyiiig, constnicting, and dispntchin g. wherein the decision on whether or not to revoke 
: * a^ccyfis is base d on porm ission s provided by the identity . 

Claim 0. (Original) A method in accordance with Claim 1 , further comprising 
' the Ibllowing: 

' an act of determining an address of the sci-vice. 

j . ; Claim . 10. (Original) A method in accordance with Claim 9> wherein the act of 
, j' conslrucling a network message comprises the following: 

an act of including the address of the service in the network message. 

Claim 1 1 . (Original) A method in accordance with Claim 9, wherein the network 
message is a fii-st network message^ wherein the act of determining an address of the service 
; comprises Ihc following: 

! WW act of constnicting a second network message in accordance with the message fomiat 

lhat Is recognized by a locator service, the second network message representing a query )br the 
address using the idcnl ification <j f the identity; 

nn act of dispatching the second network message to the locator service; and 
' an act of receiving a response fi'om the locator service lliat includes the address. 

r ' 
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Claim 12. (Original) A mclhod in accordance with Claim 11, wherein the act of 
receiving a response fnun the locator service comprises the following: 

an act of receiving a third network message from the locator service, the third network 
niessajjc being in accomlancc with the message format. 

Clain) 13, (Orisinal) A method in accordance v/ilh Claim 1, wherein the act of 
con.Mincting a network message in accordance with a message fonnat that is recognized by the 
. service comprises the following: 

an net of consttucling a network message in accordance with the Simple Object Access 
Protocol 

Claim 14. (Original) A method in accordance with Claim 1, wherein the act of, 
di&]>;ilching the network tncssago to the sei-vice comprises the following: 

an act of dispatching the network request to a locator service that maintains a list of. 
addresses for typc-speci lie Uula services corresponding to the identity. 

Claim 15. (Original) A melhod in accordance with Claim 1, wherein the act of 
dispatching the network message to the service comprises the followmg: 

an act of dispatching the network request to a type-specific data service that maintains a 
lisl c)f addresses for typc-speci fic data services correspond ing to the identity. 

... Claim 16. • . (Original) A method in accordance with Claim 1, wherein the act of 
, ' • ' tlif>putching the network message to the service comprises the following: 
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an act of dispalcbing the nelworic message to Ihe service using a transport protocol that is 
' compatible willi transport over the Inlemct. 

Cllaim 17. (Original) A mclhod in accordance with Claim 1, wherein the act of 
dispatching the network message to the service comprises the following: 

an act of dispatching the network message to a different machine as compared to the 
machine that nms the Jipplication. 

Claim 18. (Original) A method in accordance with Claim 1, wherein the act of 
dispatching the network message to the sci-vioe comprises the following: 

an act of dispatcliiiig the network message to a service that is mn on the same machine as 
the apph'CtUion- 

Claim 19, (Original) A method in accordance with Claim 1 , wherein the identity 
is au individiiat. 

Claim 20, (Criginjil) A method in accordance with Claim I, wherein the identily 
is u gronp of individnols. 

Claim 21 , (Orjgiucil) A method in accordance with Claim 1 , wherein the identity 
is uu organizntion. 
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Claim 22. (Currently Amended) In a computer environment including a plurality of 
npplications lhal opcitiLc on data related lo an identity, the computer environment also including 
a service that inaiiUains data associated with the idenlily, a mctliod for ono of the plurality of 
aj)plic?ilii>ns to operate on data related to the identity, the method comprising the following: 

an act of determining that data associated with the identity is to be operated on, the data 
bdnJi;jl5S£!!i:ll^^/i that the d ata belongs to tli c associated identity aud_also 

gLid\ t|vij,i|ie_id^^^ control over access nrivilc gps of the plurality of applications lo the 

data : 

a step for formulating a request to operate on the data via a structured network message 
; that jdcnti fies the identity; and 

an act of dispatching the network message to the service. 

Claim 23. (Orisinrd) A method in accordance with Claim 22, wherein the step 
for formulating a rcqticst comprises llie following: 

an net of identifying a daU\ structure that represents the data associated with the identity, 
the data structure being in accordance with a data format recognized by the service and the 
pliiuilily of applications; and 

{111 act of constructing a network message in accordance with a message formal that is 
recognized by the service^ the network message representing a request to perfonn the operation 
on the dala structure, tlie network message identifying the data slaicturc by identifying the 
. identity. 

.'• . ' ' ' 

I * • 
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Claim 24. (Ciurently Aincndcd) A computer program product for use in a computer 
environment including n plurality of applications that operate on dala related to an identity, the 
convpulor environment niso including a service that maintains data associated with the identity, 
the computer program product for implementing a method for one of the plurality of applications 
to operate on dula rclalcd to the identity, Iho computer program product comprising one or more 
computov-retuluble media having stored thereon the following: 

conipnler-cxccutahlc instructions for identifying a data structure that represents data tliat 
i$ 10 be operated on, the diita being associated with the identity such that the da ta b eloneis to the 
nssoj:iateci identity and also such that th e identity ret ai ns control over ac cess nrivilcpes of th e • 
plurality of ap plication s to th e data, the data structure being in accordance with a data fonnat 
recogni/cd by the service imd the plurality of applications; 

conipuler-execiilablc instiiiciions for constructing a network mcssafic in accordance with 
a message fonnat that is rccos;nizcd by tbc service, the network message representing a request 
10 jH^rform tlic opcralion on the data stmcture, the network message identifying the data stnicturc 
by identifying tbc identity; and 

computcr-execulal>lo iuiilnictions for causing the network message to be dispatched to the 
service. 

Claim 25. (Original) A computer program product in accordance with Claim 24, 
vvlicrcin the one or more ctunpuicr-rcadnble media arc physical storage media. 

;! ; C;inim (Original) A computer program product In accordance with Clmm 24, 

wherein the one or moic computer-readable media further have stored thereon the following: 
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comimtcr-executahlc instructions for constructing a second network message in 
accortbnoc willi llic message Tormat tlial is recognized by a locator service, the second network 
iY\cs.sago representing a query for the address using the idenli fication of the identity; 

conipuler-oxccutable instructions for causing the second network message to be 
' dfstiatchcd to the locator service; and 

conipiucr-cxccutciblc instnictions for detecting the receipt of a response from the locator 
scivicc thill includes the addcoji.s. 

Claim 27. (Currently Amended) Tn a computer environment including a plurality of 
applications (hat operate on dala related to an identity, the computer environment also including 
a si.^rvico that mnintains diita fissociatcd with the identity, a method for the sei"vicc facilitating 
accA^^s of the plurality of applications lo data related to the identity, the method comprising line 
following: 

an act of receiving a network message from one of the plurality of applications, the 
network nKissngc structured in accordance with a message fomiat that is recognized by the 
Kervjcc^ the network mcssngc representing a request to operate on a data structure associated with 
iho idcnlily su cli that the dala helonKs to the associated iden t ity and also such that the idcntiiv 
rHging^^ Pf apphcations to the da ta, the data structure 

huing structureil in accordance with a data forniat rccogni/ed by the service and the plurality of 
applications; 

fin act of interpreting the network message in light of the message formal to thereby 
• * . • 6>i.1r,'ict an idciiliricntion oTthc identity and an identification of the data structure; and 

an act of performing the requested operation on the data stnicture using the dala formal. 
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Claim 28. (Cxmcnlly Amended) A method in accordance with Claim 27, further 
conjprising the following: 

prior to the act of perfonning the requested operation, an act of detemiining that the one 
of the plurality oT appUcalions is authorized to perform the requested operation on the AjUi 
Rlrablure jbasc d on perm iss ions provided by the identity . 

Claim 29. (Original) A melhod in accordance wilh Claim 28, wherein: 
' • i the method further comprises an act of maintaining a list of access rights to the data 

HtnicUirc; and 

the act of determining that the one of the plurality of applications is authorized to perfoitn 
the icqugstud operation ou tlic data structure comprises an act of referring to the list of access 
rights. 

Claim 30, (Original) A method in accordance with Claim 29, wherein the act of 
mainlaimng a list of access rights to the data structure comprises an act of honoring requests 
issued by the identity to control access rights to the data structure, 

Clriim 3 J. (Original) A method in accordance with Claim 27, wherein the djUa 
^tniciure represents addresses corroi«ponding to a plurality of type-specific data sei-vices that 
mninlain typc-specine data structures related to the identity, 

Pc)iiOl0of25 

PAGE 1»33' R(»D AT 1212120056:50:36 PM (Eastern Standard Time]* S 



DEC-02-2005 FRI 04:55 PM WORKMAN NYDEGGER FAX NO. 8013281707 P 

.AppI'' '*^'"! |tV0OJ,7SO 

Amcnihiicnl "U*' tlnicJ December 2, 2005 

Reply \o Onicc Ai-tion mailed .Si.*pttiiibci' 1 5, 2005 

Claim 32. (Original) A method in accordance with Claim 31, wherein network 
message H a first nclwork message, wherein Ihe act of performing the requested operation on the 
daUi r.lruclure comprises ihe following: 

an act of reading at least one address from tlie data structure; 

an act of constructing a second network message that includes the at least one address 
road from the data striicUire; and 

an act of dispatching Ihc second network message. 

Claim 33. (Originjd) A method in accordance with Claim 32, whcrcin the act of 
disprttcliing tlic sccon<I network message comprises an act of dispatching the second network 
message In |he onfi of the plu m lily oT application pix»g)'ams. 

Claim 34, (Original) A method in accordance with Claim 32, wherein the act of 
disi^olcliing \ho second network message comprises act of dispatching the second network 
; message in accordance wilh the message format. 

Ciaiin 35. (Origij^al) A method in accordance with Claim 27, wherein the data 
shiichirc rcprcsLUits personal address information corresponding to the identity. 

Claim 30. (Original) A method in accordance with Claim 27> wherein the data 
i?irnctiire rqircsonts coittaets information corresponding to the identity. 



Pago 11 of 25 

PAGE 19/33 ' RCVD AT 1212/2005 6:S0:36 PM (Eastern Ste^^ 



DEC-02-2005 FRI 04:55 PM WORKMAN NYDEGGER FAX NO. 8013281707 P. 

Ai>n!iifttfon No. 10/003.750 

A»^s:mlntiiU •'0" ilaie J neccnibcT 2005 

Reply < KHfC Aciion niaitctl Supttiiibcr 1 5 , 200i 

Claim 37. (Original) A method in accordance witli Claim 27, wherein the data 
stmc lure rcprcscnls grocery list informaliori corresponding to tlie idenlily. 

Claim 38. (Original) A raclhod in accordance with Claim 27, wherein tlie data 
suuctiirc represents iii-box infomiation corresponding to the identity. 

Claim 39. (Original) A method in accordance with Claim 27, wherein the data 
slrijclurc reprcsenls nuisic service infonnalion coiresponding to the identity. 

Claim 40. (Original) A method in accordance with Claim 27, wherein the data 
' , !?;(( iicture represents calendar information corresponding to the identity, 

Claim 41. (Originnl) A method in accordance with Claim 27, wherein the data 
slrwclurc rcprcscnls documents that the identity is entitled to access. 

Clain^ 42. (Original) A method in accordance with Claint 27, wherein the data 
fttaicLurc represents application selling information corresponding to the identity. 

Claim 43. (Originnl) A meihod in accordance with Claim 27, wherein the data 
slrui./lurts represents physical device information corresponding to the idenlity. 

' (?hurn44. (briginiil) A method in accordance with Claim 27, wherein the data 

structure rcprcscnls lavorite Wob site infonnation corresponding to the identity. 
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Claiju45, (Ori{iinaI) A method in accordance vvilh Claim 27, wherein the 
.nclwork messago is a first network message, wherein Ihc act of performing the requested 
operation on Iho data slructurc comprises the following: 

m act of reading at least one address from the data structure; 

an ucl of conslrncting a second network message that includes Ihe at least one address 
road from the dnla stmclurc; and 

an act o f dispatching the second nclwork message. 

Claim 46. (Original) A method in accordance witli Claim 45, wherein the act of 
dis[U'itclHng the second m-<twork message comprises an act of dispatching the second network 
rnChiseigc to tlic one of the plurality of application programs. 

Cluini 47, (Original) A melhod in accordance wilh Claim 45, wherein the act of . 
clispalching the second network message comprises an act of dispatching tlie second network 
mciisagc in accordance with the message format. 

Claim 48. (Currcnlly amended) A computer-program product for use in a computer 
environment including a phuality of applications that operate on data related to an identity, the 
coinputcr environment also including a service that maintains data associated with the identity, 
. . the computer program product for implementing a raetliod for the service facilitating access of 
*«h'c.' plurality of aiiplicutions to data related to the identity, the computer program product 
comprising one or ntgrc c'oniputcr-rendable media having stored thereon the following: 
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conipiitcr-cxcculable instruclions for detecting the receipt of a network message from one 
of iho plitniliiy of applicalions, llie nelwork message structured in accordance with a message 
format that is recognized by the service, the network message representing a request to operate 
on a data structure associated with the identit y such that the data belongs to the asso ciaLed 
idei ili tv andjfilso. sue]) j]^LllT^e_i^le ntitv retains control over access privileges of the pl urality of 
api7jirj]JimisJoJlicj.U^^ the dnta structure being structured in accordance with a data format 
vccognizcd by the service and the plurality of applications; 

computer-executable instructions for interpreting the network message in light of the 
mc$5;jBC foimat to thereby cxLrnct an identification of the identity and an identification of the 
• data structure; ajid 

computcr-execu table inslniclions for performing the requested operation on the data 
structure using the data format. 

CUiim 49. (OrlgiiKil) A computer program pix)duct in accordance with Claim 48, 
whcioin the one or more compuier-rcadabJc media are physical storage media. 

Claim 50, (Original) A computer program product in accordance with Claim 4S, 
wherein the one or more con\putcr-rcadablc media Turthcr comprise the following: 

computer-executable instruclions for determining that the one of the plurality of 
appJicalious is authorized to perform the requested operation on the data structure prior to tl^c 
perfonninc the vcquc.'itcd operation. 
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Claim 5 1 . (Original) A computer program product in accordance with Claiin 48, 
wherein ihc one or more compulcr-rejicteblc media further have stored thereon tlie following: 

computcr-cxectilable instructions for maintaining a list of access rights to the data 
. siructure; and 

computer-executable instmctions for referring to the list of access rights in order to 
deti-rminc thai the one of ihc plurality of application is aut]ionV.cd to perfoim the requested 
opcnUiou on the data sJructurc, 

Claim 32, (Currently Amended) A computer network that facilitates access to 
idcnlity-centrio data, the computer network comprising the following: 

a plurality of applications that operate on data related to an identity such that the data .' 
l^;(>1nni>s to n^e^ and also s uch tliat the idci^titv ret ains control over acce ss 

pxivi.lji;(j^>f__tho plura lity of a pplicatio ns to the data , each of the plurality of applications 
configured to dclcrmino that data associated with the identity is to be operated on, identify a data 
slructuro that represents Ihe data tissociatcd with the identity^ construct a network message in 
nccordoncc wilh u mofssngo struclurc recognized by the plurality of applications, the networlc 
message rcprosc3iliny a request to perform the opei-alion on tlic data structure, the network 
message identifying the data structure by identifying the identity, and configured to dispatch the 
network message to the service; and 

a plurality of services that maintain data associated witli the identity, each of the plurality 
of applications configured to detect the receipt of the network message from one of the plurality 
■ f)"f applicalidiif!, iiilcrprct the network message in light of the message format to thereby extract 
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an iclcntificntion of ihc idenlity and an identification of the data stmcturc, and perform the 
requested opcnillon on Ihe data stmcturc using the data fomiat. 

Claim 53. (Cxirrenily Amended) A method for providing identity-centric data to one 
or more applications, the method including at least the following acts: 

storing identity-centric data relating lo multiple idenlilies in a data store associated with a 
data ^rirvir.n^wlxfiKjii^tli^^^^^^ d at a relates to mul ti ule identities su ch that the data 

bc!ongs^iojLho...a^^^^^^^ 
pr jj^ i leges of Uii^ll^ 

reccivins various rcqucsts from the applications for identity-centric data relating to at 
toiRl some of Ihe identities; and 

providing the rctpiesled data to tlic requesting applications in response to their requests, 

Clnim 54. (Currently Amended) A method for accessing identity-centric data via a 
data service which maintains identity-centric data relating to user identities, the method 
comprising: 

requesting idcntiiy-ecntric data relating lo one or more of the user identities from the data 
fiCfvice, yvhcrein llic idcntUy'Ccntri c data relates to multi pl e identities such that the da ta bclonas 
lo tha a5;.sociatcd idctuily nntl also such ll )at the i dentity retains control ove r acc ess privileges of 
ihe plumljj^^^ to fhe data, and 

receiving the requested data from the data service. 
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Claim 55. (Ciin^cntly Amended) In a computer environmenl including a plurality of 
applications llifil operate on data related to an identity, ihe computer CTivironment also including 
a service thai maintains data associated with the identity, a method for one of the plurality of 
applications to operate on data related to the identity, the method comprising the following: 

an act of idcnlifying a data structure that represents data that is to be operated on, the data 
being associated with the identity^jsiich lh; it Ihe data belongs to the associ ated identity and also 
sLich, ^h?ljhajd>:rifLt^^^^^ <>ver occess privileges of the p lu rality of applica tion§JgjiJie. 

data, the data slruclure being recognized by the service and by at least one of the plurality of 
applications; 

an act of constructing a network message in accordance with a message format that is 
reqoiJni/cd by liic service, the network message representing a request to perfonn tl^e operation 
on the data structure; and 

an act of dispatching the network message to the service. 

Claim 56. (Previously Presented) A method in accordajice with Claim 55, 
wherein the net of dispatching the network message to the service comprises dispatching the 
network message direcUy to the service without first communicating with a locator service. 

Claim 57. (Previously Presented) A method in accordance with Claim '55, 
wherein the d:ita that is to be operated on is not directly accessed by the plurality of applications, 
bitt is only accessed vifi the service. 

.! 

\ . 
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Claim 58. (IVcviously Picscnlcd) A method in accordance with Claim 55, 
wlicruin the act of conslrucling a nclwork message in accordance wilh a message format that is 
rtjcugni/cd by Ihc service comprises the following: 
! an act of consliiicting a network message in accordance with Ihe Simple Object Access 

Proloco!. 

ClaijnSO, (Previously Presented) A method in accordance with Claim 55, 
wherein the act of dispatching Iho network message to tlie service comprises the following: 
. • nn net of disp;ilchiag t1\c network request to a locator service that maintains a list of 

addresses for tyi^c-spcci Qc data services corresponding to the identity. 
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